Blogs

Events

Stories

Attention: RHN Hosted will reach the end of its service life on July 31, 2017.
Customers will be required to migrate existing systems to Red Hat Subscription Management prior to this date.
Learn more here

The nss-util package has been upgraded to upstream version 3.13, which providesa number of enhancements over the previous version. (BZ#788670)

The nss packages have been upgraded to upstream version 3.13, which provides anumber of bug fixes and enhancements over the previous version. (BZ#788673,BZ#788964, BZ#788672)

The nspr package has been upgraded to upstream version 4.8.9, which provides anumber of enhancements over the previous version. (BZ#788674)

This update also fixes the following bugs:

* A lack of robustness flaw caused crashes in the administration server for RedHat Directory Server because the mod_nss module made nss calls beforeinitializing nss per documented API. With this update, nss protects itselfagainst being called before it as been properly initialized by the caller.(BZ#789043)

* Previously, due to a bug in the FreeBL library, Openswan could generate a KeyExchange payload that was one byte shorter than what was required by the DiffieHellman (DH) protocol. As a consequence, Openswan dropped connections duringsuch payloads. With this update, the size of the payload is set to zero bydefault, and the Softoken module is queried for the size. Connections are nolonger dropped by Openswan in the described scenario. (BZ#786436)

All users of nss and nspr are advised to upgrade to these updated packages,which fix these bugs and add these enhancements.

Solution

Before applying this update, make sure all previously-released errata relevantto your system have been applied.